Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2023/03/30 9:22 a.m.34 views

CVE-2023-28642

A flaw was found in runc. This vulnerability could allow a remote attacker to bypass security restrictions and create a symbolic link inside a container to the /proc directory, bypassing AppArmor and SELinux protections. Mitigation Avoid using an untrusted container image...

7.8CVSS7AI score0.00343EPSS
Exploits0References4
OSV
OSV
added 2023/03/29 6:15 p.m.37 views

CVE-2023-28642 AppArmor bypass with symlinked /proc in runc

runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc inside the container is symlinked with a specific mount configuration. This issue has been fixed in runc version 1.1.5, by prohibiting symlinked /proc...

6.1CVSS6.7AI score0.00343EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2023/03/29 6:15 p.m.42 views

CVE-2023-28642

runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc inside the container is symlinked with a specific mount configuration. This issue has been fixed in runc version 1.1.5, by prohibiting symlinked /proc...

7.8CVSS7.8AI score0.00343EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2023/03/29 12:0 a.m.51 views

CVE-2023-28642

runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc inside the container is symlinked with a specific mount configuration. This issue has been fixed in runc version 1.1.5, by prohibiting symlinked /proc...

7.8CVSS6.6AI score0.00343EPSS
Exploits0References5
Rows per page
Query Builder